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Abstract. Hybrid branching-time logics are introduced as extensions of 
CTC-\ike logics with state variables and the downarrow-binder. Following 
recent work in the linear framework, only logics with a single variable 
are considered. The expressive power and the complexity of satisfiability 
of the resulting logics is investigated. 

As main result, the satisfiability problem for the hybrid versions of sev- 
eral branching-time logics is proved to be 2EXPTIME-complete. These 
branching-time logics range from strict fragments of CTC to extensions 
of CTC that can talk about the past and express fairness-properties. 
The complexity gap relative to CTC is explained by a corresponding 
succinctness result. 

To prove the upper bound, the automata-theoretic approach to branching- 
time logics is extended to hybrid logics, showing that non-emptiness of 
alternating one-pebble Biichi tree automata is 2EXPTIME-complete. 

1 Introduction 

Hybrid logics are extensions of modal logic that allow to refer to individual 
states of a model. They aim at extending the expressive power of modal logics, 
without losing their nice properties such as decidability. Hybrid logics have been 
researched quite intensively during the last years. Their applications range from 
verification to reasoning about semistructured data [TD] . See [J for a recent 
survey and an introduction to hybrid logic. 

On the technical side, the aims of hybrid logic can be achieved by adding 
nominals and state variables, corresponding to the first-order concepts of con- 
stants and variables. Nominals are an additional kind of atomic symbols which 
are true in exactly one state in a model, and therefore name this state. Nominals 
are fixed with the model, whereas the assignment of states to state variables can 
be changed by quantification. To preserve the local perspective of modal logic, 
the quantifier considered the most is the downarrow-operator, first introduced 
in [12] and denoted j, which binds a state variable to the current state. 

Satisfiability of hybrid j-languages is undecidable with respect to arbitrary 
Kripke-structures [5] and only non-elementarily decidable if the class of models 
is restricted to trees [TB] or linear structures [TT], i.e., to those models impor- 
tant in verification. These results initiated research on decidable fragments and 
fragments of lower complexity [20118] . 



An extended abstract of this paper was presented at the International Workshop on 
Hybrid Logics (HyLo 2007). 



In [TB], Schwentick and W. considered bounded- variable fragments of hy- 
brid j-languages in the linear framework. While complexity of the two- variable 
fragment is already as bad as for the unbounded language, satisfiability of the 
one- variable fragment is EXPSPACE-complete. Furthermore, the one-variable 
fragment has the full expressive power of first-order logic. 

The aim of this paper is to extend this successful approach to the branching- 
time framework. While the logic of [IS] could also be interpreted over trees, we 
believe that hybrid extensions of classical branching-time logics like CTC are a 
more convenient formalism to reason about trees. 

Our main result is that satisfiability for the one- variable-fragment of hybrid 
£CT £+Past is 2EXPTIME-complete. The lower bound is already achieved for 
the logic containing only the next X and future F modalities and is explained 
by a corresponding succinctness result. The upper bound is by a reduction to 
non-emptiness of alternating one-pebble Biichi tree automata, a problem that 
we prove to be 2EXPTIME-complete as well. Furthermore, we study the ex- 
pressive power of hybrid branching-time logics and show, for example, that the 
one- variable-fragment of hybrid CTC is strictly more expressive than CTC. 

Section [5] gives the basic notions of branching-time logics and introduces 
their hybrid extension. It also contains the definition of alternating one-pebble 
Biichi tree automata. Section [3] is concerned with the expressive power of hybrid 
branching-time logics, which are compared with classical branching-time logics 
and logics with the N-operator ( "from now on" ) of [15] . The complexity and suc- 
cinctness results can be found in Section 21 those on tree automata in Section [5l 
We give some directions for further research in Section [6] 

2 Preliminaries 

The basic definitions of branching-time logics and Biichi tree automata are pre- 
sented in this section. As both formalism are defined with respect to infinite 
trees, we start by defining these structures. 

Let D={1,. . . ,k} be a finite set of directions for some k G N. An infinite 
D-tree is a prefix-closed set T C D*, i.e., whenever x ■ c 6 T where x G D* and 
c G D, then also x G T. The empty string e is the root of T and for all c G D, 
x ■ c is called a child of the node x. A path 7r in T is a prefix-closed minimal 
set 7r C T, such that for every x G tt, there is a unique c G D with x ■ c G ir. 
We use "<" to denote the descendant-relation on T, i.e., x < y if and only if y 
is a strict descendant of x. Note that this order is partial as nodes in different 
branches are incomparable. The branching degree d(x) is the number of children 
of a node x. We only consider k-ary trees, where d(x) — k for every node x, and 
refer to them as trees in the following. 

A labeled tree over a finite alphabet S is a pair (T, V) where T is a tree and 
V : T — > S assigns a symbol from E to every node of T . We are mainly interested 
in the case in which £ = 2 PR0P for some set PROP of propositions. Such trees, 
usually referred to as computation trees, result for example from the unwinding 
of Kripke structures (see, e.g., 13J ) . In the following, we identify (T, V) with T. 



2.1 Branching-Time Logics 



We briefly recall the basic notions of branching-time logic, starting from the logic 

oo 

ECT C+Yast which extends CTC in two ways: First, by adding the F-modality 
for "infinitely often in the future" to express fairness properties. Secondly, by 
introducing past modalities Y for "previous" and S for "since" . 
£ CT£+Past-formulas are defined by the following grammar: 

oo 

tp ::= p | ->tp I tp A tp I EX.Lp | EtpUtp | AipUip | EF | Ytp | tpStp 
where p E PROP. We use the usual abbreviations T, J_, tp V (p, if — ► tp, and 



EFip := ETUp EGp 
AFtp := ATXJtp AG^p 
AXtp := -nEX^tp Pip 



= -.AF-.93 AG ip := -nEF^ip 

OO 

= -nEF^ip AFp := AGAFtp 

OO 

= TS(/> EG(^ := EFEGyj 



The semantics of £CT£+Past-formulas is defined with respect to a compu- 
tation tree T and a node n of T: 

— T, n \= p iff p e V(n) 

— T,n\= -><p iff T, n ^ tp 

— T,n\=(pAipiST,n\=(p and T, n \= tp 

— T,n\= EXip iff there exists ac£D, such that T,n ■ c (= tp 

— T, n \= EtpUip iff there exists a path ir with b 6 it, such that there is 
a descendant n' € it of n with T, n' |= ^ and for all nodes x E 7r with 

n < x < n' , we have T, a; |= 9? 

00 

— T, n |= EF93 iff there exists a path 7r with n E 7T, such that there are infinitely 
many descendants n' £ 7r of n with T,n' \= tp 

— T, n \= AtpXJtp iff for all paths tt with n £ 7r, there is a descendant n' £ n of 
n with T, n' \= ip and for all nodes x E 7r with n < x < n 1 , we have T, a; |= 

— T, n |= Y<y9 iff T, n' )= tp with n — n' ■ c for some c £ D 

— T, n |= <^S^ iff there exists an ancestor n' of n, such that T, n' |= ip and for 
all nodes x with n' < x < n, we have T, x |= ^ 

Two formulas tp and "0 are equivalent, if T, e |= 95 <^=> T, e |= ip for all 
computation trees T, i.e., we only consider initial equivalence as we want to 
compare the expressive power of logics with and without past modalities [15j . 

We consider several fragments of £CT£+Past and denote them by B(C), 
where C is the set of temporal operators allowed. To give some examples: 

— B(X, F) is the logic UB of 0, 

— B(X, U) is the well known logic CTC [7], 

00 

— B(X, U, F) was introduced in [8] as £CTC, and 

— B(X,U,Y,S) is VCTC, i.e., CT£ +Past. 

In all these logics, future temporal operators occur only immediately in the 
scope of the path quantifiers E and A. Opposed to this, the branching time logic 
CTC* from [8] allows Boolean combinations and nesting of these operators. 



2.2 Hybrid Branching-Time Logics 



We extend branching-time logics with hybrid machinery along the lines of [18] . 
I.e., we use only one state variable x and consider only a single nominal root. 

oo 

Definition 2.1. Given a set C C {X, F, U, F, Y, P, S} of modalities and a 
branching-time logic B{C), the formulas of the corresponding hybrid branching- 
time logic TLB(C) are those of B(C) and additional 

Ix.ip | x | @ x ip | root | @ root ^, 

where ip is a 7i/3(C)-formula and x is the only state variable. 

The semantics of hybrid branching-time formulas is defined with respect to 
a computation tree T and two nodes n, m of T, where n is the current node and 
777 is the node assigned to the state variable x: 

T, 77 , 777 \=l X.tf iff T, 77 , 77 |= If T,n,m\=X iff 77 = 777 

T, 77 , 777 |= @ x tf iff T, 777 , 777 |= if T,n,1Tl \= root iff 77 = £ 

T,n,m\= @ roo tP iff T, e, m \= ip 

and the semantics of classical branching-time logic are extended in the obvious 
way, i.e., the state variable is not affected. 

A formula ip is called satisfiable if there is a computation tree T and nodes 

77 , 777 SUCh that T, 77 , 777 |= If. 

Remark 2.2 (Using hybrid machinery). We give two examples on how hybrid 
branching-time logics work. The reader will find both patterns again in the 
proofs given in this paper. 

Hybrid branching-time logics can reason about the past without using past 
modalities. The past formula Pip can be expressed as J,a;.@ root EF(EFa; Atp), for 
example. This illustrates how a finite prefix of a path can be fixed. 

Moreover, they can easily compare two nodes. The property that there are 
two different nodes in a tree that agree on the propositions pi, . . . ,p n , can be 
expressed as EF(|x.@ root EF(-.x A A"=iPi <~> ®xPi))- 

Remark 2.3 (Bisimulations) . Bisimulation equivalence is not respected by hy- 
brid branching-time logics: We can distinguish two isomorphic subtrees by nam- 
ing the root of one of those subtrees. But they respect hybrid one-bisimulations 
defined in [3] and successfully applied in [18] in the linear framework. 

2.3 Tree Automata 

The following basic notions about Biichi automata on infinite trees are based on 
the definitions in (25] and [53] . For a more general introduction to automata on 
infinite trees, we refer to [2"T] . 

A non- deterministic Biichi tree automaton A is a tuple (Q, -S', 9°, S, F), where 
Q is a finite set of states, S is a finite alphabet, q° £ Q is the initial state, F C Q 
is a set of final states, and S : Q x £ — > 2^ is a transition function. Whenever 



A is in state q at a node x, it non-deterministically chooses a fc-tuple (q\, . . . , q^) 
of states from 8{q, V(x)) and moves to node x ■ i in state for each i = 1, . . . , k. 

A run r of 4 on a JC-labeled tree (T, V) is a Q- labeled tree (T, V), such that 
the root is labeled by the initial state and the transition rules are respected, i.e., 
if a node x is labeled q and its children are labeled q%, . . . then (qi, ■ ■ • ,Qk) € 
S(q, V{x)). A run r is accepting if lim(ir) C\ F ^= $ for every infinite path 7r of r, 
where lim(ir) is the set of states occurring infinitely on tt. A labeled tree (T, V) 
is accepted by A if there is an accepting run of A on (T, y ) . The language of A 
is the set of trees accepted by A and denoted L(A). 

Proposition 2.4 ([17J). Non-emptiness of non- deterministic Biichi tree au- 
tomata can be decided in quadratic time. 

Alternating one-pebble Biichi tree automata generalize this concept in three 
ways. First, they are two-way automata, i.e., they can also move upward in the 
tree. Additionally, they can drop a pebble at a position in the tree and lift the 
pebble again if they are at the position where the pebble was placed. In other 
words, these automata can mark a position to find it again after moving away. 
Finally, they can universally and existentially branch into several independent 
sub-computations. 

More formally, an alternating one-pebble Biichi tree automaton is a tuple 
A = (Q, S, q°, S, F), such that Q is a finite set of states, £ is a finite alphabet, 
q° G Q is the initial state, F C Q is the set of accepting states, and 

S:QxS^(Qx {drop,lift}) U B + ([k] x Q) 

is a transition function. 

In this definition, we use [k] := {— 1, 0, 1, . . . , k} to give the direction of a move 
of the automaton and B + (X) to denote the set of positive Boolean formulas over 
X, i.e., formulas built from A by A and V including T and _!_. Note that such an 
automaton can send several subcomputations into the same direction, but does 
not need to go into every direction. 

A configuration (q, x,y) G Q x D* x (D* U {J-}) of A consists of a state, the 
current position in the tree, and the position of the pebble, where "_!_" means 
that the pebble is not placed. 

A run r of A on an infinite labeled fc-ary tree (T, V) is a possibly infinite 
tree (T', V) whose nodes are labeled by configurations of A. This tree must be 
compatible with the transition function. For example, for every node v G T" 
labeled by a state (q, x ■ c,y), 

— if 5(q, V(x ■ c)) = (9', drop) and y = _L, then v has a child labeled with 
(q, x ■ c, x ■ c), otherwise, i.e. if y ^ _L, the transition cannot be applied; 

— if (5(<7, V(x-c)) = (q' , lift), then v has a child ((?', x ■ c, _L) if x-c = y, otherwise 
the transition cannot be applied; 

— if S(q, V(x ■ c)) = (1, q') A (—1, q"), v has children labeled by (</, x ■ c ■ 1, y) 
and (q",x,y); 

— if 5(q, V(x ■ c)) = (0, q') V (2, q"), then v has a child labeled by (q' , x ■ c,y) or 
a child labeled (q", x ■ c ■ 2, y). 

A run is accepting if every infinite path contains infinitely many configurations 
with states from F. Acceptance of A is defined as usual. 



3 Expressivity 



We examine the expressive power of hybrid branching-time logics. By Remark 
12.31 these logics are strictly more expressive than their classical counterparts. In 
the first part of this section, we give two examples where hybrid machinery is 
used to cover even more expressive classical branching-time logics. These results 
are in contrast to [18] . where it was shown that the hybrid version of CTC is 
expressively equivalent to CTC. The second part compares branching-time logics 
with the N-operator to hybrid branching-time logics. 

3.1 Capturing Classical Branching-Time Logics 

Adding hybrid machinery to £>(X, F) results in a strictly more expressive logic. 

Theorem 3.1. HB(X, F) is strictly more expressive than £>(X,F). 

Proof. It is known from [TS] that the extension of £>(X, F) with one of the past 
modalities S or Y is strictly more expressive than Z?(X, F). We show that both 
S and Y can be expressed in 7iS(X, F). 

For the Y modality, the idea is to fix the current node by naming it x and 
then to jump to the root and move forward to the node where EXx holds. This 
node is the unique predecessor of the node named x. If the latter node is already 
the root, no predecessor exists and the following formula evaluates to false. 

Yip =lx.@ root EF((EXx) A (p) 

The Since-modality can be replaced in a similar way: 

ipSip =|x.@ root EF(EFa; A ip A (x V EX(EFx A AG(EFir -> tp)))), 

respecting that tp either holds at the current or at some previous node. □ 

As both formulas given in the previous proof are of linear size in the length 
of the past-formulas, we obtain the following intensification of Theorem 13. II 

Corollary 3.2. There is a linear translation from £>(X,F, Y, S) to HB(X, F). 

This shows that every hybrid branching-time logic containing X and F can 
refer to the past. In particular, the hybrid version of CTC captures the extension 
of CTC with past modalities, which is known to be strictly more expressive 
than the pure future logic |15| . As hybrid branching-time logics do not respect 
bisimulation-equivalence, this inclusion is strict. 

Theorem 3.3. HB(X, U) is strictly more expressive than VCTC. 

The bisimulation argument even shows that there cannot be a translation 
from hybrid branching-time logics into VCTC* , since the latter can express only 
bisimulation- invariant properties. 

On the other hand, we conjecture that it is not possible to express the SCTC- 

oo 

formula EFp in HB(K, U). In this case, HB(K, U) and CTC* are incomparable 
with respect to expressive power. 



Finally, hybrid branching-time logics are obviously fragments of Monadic 
Path Logic (A4VC), the fragment of AiSO where set-quantification is restricted 
to paths. This inclusion can be proved to be strict by observing that hybrid 
branching-time logics respect hybrid one-bisimulations as defined in J3J. 

3.2 Expressing "From Now On" 

The temporal operator N for "from now on" was introduced by Laroussinie and 
Schnoebelen to branching-time logics with past [15j . The semantics of N is given 
by: T, n |= iff T", e |= ip, where T" = {m G N* | n ■ m G T} is the subtree of 
T rooted at n. That is, N allows to forget about the past. 

In [15] the authors provide several results on whether N adds expressive 
power to branching-time logics with past. E.g., it does for £>(X,F,Y, P) but 
does not for VCTC and VCTC*. Moreover, they argue that N offers a more 
convenient way to describe some properties in branching-time logics with past 
(see [15] for an example), which is partially attributed to the succinctness of 
logics with the N-operator0 

The following proposition shows that hybrid branching-time logics offer at 
least the same convenience and are at least as succinct as the logics including N. 

oo 

Proposition 3.4. For every set of modalities C C {X, F, U, F, Y, P, S}, there 
is a linear translation from B(N, C) to TCB(P, C). 

Proof. Given a B(N, C)-formula (p, we obtain an equivalent HB(P, C)-formula 
J, x.ip' by substituting N by the downarrow-operator and guarding all past modal- 
ities. I.e., ip' results from ip by applying the following rules once for every past 
modality and every N-operator: 

Nip -> | x.ip Pip -> P(Px A ip) 

Yip -> Y(Pa; A ip) ipSip -> ipS{Px A ip) 

Requiring P is only a restriction if Y is the only past modality in C . □ 

As we show in the next section, we cannot add N on top of hybrid branching- 
time logics without blowing up the complexity of satisfiability non-elementarily. 
Intuitively, this is because N can play the role of a second state variable, therefore 
enabling us to talk about three points at the same time: the new root created 
by N, the state named x, and the current state. 

But the reader should be warned not to think of N as a kind of state variable, 
since the ability to name a state and then to talk about its past is crucial to 
most results in this paper. 



To the best of our knowledge, this succinctness gap has so far only been proved for 
the case of linear temporal logic in [14] . Succinctness and complexity for branching- 
time logics with N seem to be open problems. 



4 Complexity of the Satisfiability Problem 



The main motivation behind the one-variable approache to hybrid branching- 
time logics is to tame the complexity of the satisfiability problem. This sec- 
tion shows that this approache was successful by providing a 2EXPTIME- 
completeness result for satisfiability of several hybrid branching-time logics. 

The proof of the lower complexity bound for HB(X., F) is by a reduction 
from the 2™-corridor tiling game. We first define the 2™ -corridor tiling problem. 
An instance I = (T, H, V, n) of this problem consists of a finite set T of tile 
types, horizontal and vertical constraints H,V C T x T, and a number n given 
in unary. The task is to decide, whether T tiles the 2" x m-corridor for some m, 
respecting the constraints H and V and some border constraints, especially on 
the top row to be reached. 

The 2" -corridor tiling game is played by two players E and A on an instance / 
of the 2™-corridor tiling problem. The players alternately place tiles starting with 
player E and following the constraints H and V, as the opponent wins otherwise. 
E wins the game if the required top row is reached. To decide whether E has a 
winning strategy in such a game is complete for 2EXPTIME [6] . 

Proposition 4.1. Satisfiability o/WB(X,F) is hard for 2EXPTIME. 

Proof. Let / = (T, H, V, n) be an instance of the 2™-corridor tiling problem. We 
build an HB(X., F)-formula tpi of size polynomial in \I\ that is satisfiable if and 
only if player E has winning strategy in the tiling game on /. 

Such a winning strategy is a finite T-labeled tree whose levels alternately 
correspond to moves of E and A. A node corresponding to a move of E, as 
the root for example, has one child for every possible next move of A. Nodes 
representing moves of A have only one child: the best move E can make. In order 
for the strategy to be winning, every path in this tree has to correspond to a 
correct tiling reaching the required top row. 

The formula ipi consists of two parts. The first part describes an encoding 
of a winning strategy, using a numbering of the states belonging to one row of 
the tiling as shown in Figure [T] Numbers are encoded by n propositions, one for 
each digit. The second part basically contains the conditions posed by H and V. 

To make this more precise, ipi is the conjunction of the two formulas ip s truc 
and if tiles- The first formula, ip s truc, starts by separating the lines of the tiling 
by an additional state labeled by the proposition symbol q# and marking the 
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Fig. 1. A path in the encoding of a winning strategy for the 2™-corridor tiling 
game with m rows. 



states beyond the encoding by the proposition symbol q. 

n—l n—1 

(Pstmc = root Ag # A^?A(/\ A AG((-.g A -.g # ) V ((q <-» A /\ -.ft)) 

i=0 t=0 

AAF( g# A AGg) A AG( 9 -» AGftl A <p num 

To get a correct numbering of the states representing one row of the tiling, 
fnum requires every state to have only properly numbered direct successors. 
This numbering is required to check the vertical constraints. 



if num = AG([g # -» (AX(^ A -.gr # A f\ -ft) V AXq)} 

i=0 

A[(-.g A — > (( /\ ft A AX 9# ) V i/)]) 



»=o 

n-1 

z/ = jz.AX \J (f\(qj <-> @ x ^qj) A ft A @ x -.ft A /\(^ @ x ft.)) 

i— j<i j>« 

The second part of expresses that every state corresponding to a move of 
one of the players is labeled by exactly one tile, using proposition symbols pt to 
represent the tiles, that the conditions in H and V are respected, and that all 
possible moves of A are represented. 

WtUes = AG([-.« A -.«#] -► [\J(p t A /\ -.ft/) A A 0v A 0a]) 

teT tjtt'er 

n-1 

0h = -. A*- A(p*^ AX V p*') 

i=0 teT (t,t')£H 

9 V = |x.@ root AG([EXEFx A -EF(<? # A EXEF(q # A EFz)) 

n-1 

a Afe" @ xft)] - A (p* -> V 

j=o teT (t,t')ev 

0A = -ft, -► A (P* ~+ A I EX ^' V l^-@rootAG([EXEF a; A -EF(g # 

teT (t.t')eH 

n-1 

AEXEF(g # A EF*)) A/\fe« @ x ft)] - EX[EFx A \/ j*,])]) 

i=0 (t",t')$V 

We omit formulas for the border constraints, which are straightforward. □ 

Before we proceed with the upper bound, we show that the lower bound is 
due to the succinctness of hybrid formulas. 

Theorem 4.2. The succinctness of HB(F) with respect to CTC is 0(n)\, i.e., 
there is a TLB '(F) -formula of length 0{n) such that every equivalent CT C-formula 
is at least of length 0(n)\. 



Proof. We consider the CT£ + -formula E(Fpi AFp 2 A • • • AFp„), expressing that 
there exists a path such that each of the propositions p%, . . . ,p n holds at some 
node on the path. Adler and Immerman proved that one requires a formula of 
size 0(n)\ to express this property in CTC pQ. The following WS(F)-formula has 
only size 0(n). 

n 

EF(|a;.@ rooi f\ EFfe A EFar)) 

i=l 

The crucial point is that this property depends only on a finite prefix of the 
path, which can be fixed by naming its last state x. □ 

The proof of the upper complexity bound for satisfiability of hybrid branching- 
time logics uses the automata-theoretic approach to branching-time logics (see 
[24] and references therein), extended to the hybrid framework. 

Before we go on, we observe that nesting of the .[-operator can be avoided. 

oo 

Lemma 4.3. For every 7i£>(X, U, F, Y, S)-formula ip, there is an equivalent 
formula ip of length 0(\ip\) without nested occurrences of the [-operator. 

Proof. We add, for each sub-formula 9 =\ r x.( t of ip, a new proposition p§. In a 
bottom-up fashion, we replace every occurrence of a formula 9 by pg and add to 
tp one conjunct AG(pg «-» 9'), for every 9. Here, 9' results from 9 by replacing 
all strict sub-formulas [x.\ by the respective proposition. □ 

We can now prove the main theorem of this paper. 

oo 

Theorem 4.4. For every set of temporal operators C C {U, Y, F, P, S}. the 
satisfiability problem for HB(X, F, C) is complete for 2EXPTIME. 

Proof. The lower bound was proved in Proposition 14. 11 

The proof of the upper bound is a extension of a proof in [22| , constructing 
an alternating Biichi tree automaton for a given CT£-formula. 

oo 

Given an 7iB(X, U, F, Y, S)-formula ip without nested occurrences of the 
J.-operator, we build an alternating one-pebble Biichi tree automaton A v = 
(Q, 27, q°, 6, F), with 27 = 2 PR0P , such that ip holds at the root of some iT-labeled 
tree (T, V) if and only if A v accepts this tree. This reduces the satisfiability 

oo 

problem for HB(X., U, F, Y, S) to non-emptiness of alternating one-pebble Biichi 
tree automata. The latter problem is proved to be in 2EXPTIME in Section [SJ 

In the following, we denote the dual of a formula tp by ip. It is obtained from 
ip by switching A and V, and by negating all other maximal subformulas (we 
identify -i-«p with V), e.g., x V (->x A EFp) = -^x A (x V -iEFp) (cf. [33]). 

The set Q of states is based on the Fisher-Ladner-closure of ip, consisting of 

oo 

the subformulas of tp and their duals. Additionally, the formula (EXEF-0) A ip 

oo 

and all its subformulas arc included for every subformula EF^> of <p>. The initial 
state q° is (p. The set F of accepting states contains T and all formulas of the 

oo 

form -iE(xUt/>), -iA(xUV'), and (EXEF^O Aip from Q. The transition function 
d is defined by induction on the formula structure: 




Fig. 2. The tree used to represent the string abbaa in the proof of Theorem 14. 5 



<S(T» = (0,T) 
d(-^ip,a) = 5(ip,a) 

8{x,a) = (T, lift) 
5{[x.ijj,a) = (?/>,drop) 

<5(EX^,cx)=VLiM) 
*(Y^,cr) = (-l,V) 



5(p, a) = (0, T) if pea 
<5(VA£,a) = (0,v)A(().O 

00 , 00 oo 

<S(EF</?, a) = Vr=i(*> EE V) v (°> (EXEF^.) A 
i(E(xW), a) = (0, V ((0, x) A V<=i(*> E()fW)) 
S(A(xUi>), a) = (0, VO V ((0, X ) A AJLi(*. A(xW)) 

<J(xS</>,<t) = (0,V) V ((0,x) A (-1, X SV) 



where <r £ Z 1 , p G PROP, and the notion of a dual is extended to 6 in the obvious 
way, e.g., S(EXip,a) = Ai=i 

The result then follows from Theorem 15. 11 □ 



This result is optimal with respect to the number of state variables available. 
We have shown in Section [3721 that the N-operator can be simulated by a state 
variable, and therefore be seen as a "weak" kind of variable. In the following, 
we show that adding the N-operator to hybrid branching-time logics causes a 
non-clcmentary blow-up in complexity. 

We have to be a bit careful when adding the N-operator to hybrid branching- 
time logics. First, what is the semantics of a formula of the form ©root^ in the 
scope of an N-operator? As the N was introduced to forget about the past, the 
most natural thing is to define that this formula jumps to the new root created 
my the N-operator. While this is minor if past modalities are available, it is the 
only reasonable choice for pure future hybrid branching-time logics. 

The second difficulty is that the state variable might be bound to some state 
in the past. In order not to unbind the variable, we assume that in this case 
the assignment is updated to the current state, i.e., to the new root. But this 
situation does not occur in the following proof. 

Theorem 4.5. The satisfiability problem for WB(X, F, N) has non- elementary 
complexity. 

Proof. We give a reduction from the non-emptiness problem for star-free expres- 
sions built from union, concatenation, and negation. This problem is known to 
have non-elementary complexity [19] . With a string of length i over an alphabet 
£ we associate a tree whose first i + 1 nodes have only one child. All states 
beyond carry the label q as shown in Figure [2j 

The following formula ip holds at the root if and only if the tree is an encoding 
of a string, e.g., every state belonging to the string is labeled by exactly one p a . 

i> = EF((q A AG<?)A J.x.@ root AG(EFEXa; — > A \J ( Pa A /\ -y*>)))) 
A-iQ A AG(-i<7 -> EX |x.@ root AG(EXx -> AXx)) 



We map every star-free expression a to a formula 



if a =tpA EF(-.g A AXqA lxM root a'), 

where a' is inductively defined as follows: 

e' = x a' — EX(i A p a ) , for all a e £ 

0' = ± (a- P)' = EF(EFa;A lx.@ root a' A N/3') 

(-,<*)' = -a' (a U /?)' = a' V 

The idea is that x is always used to mark the end of the substring which is 
matched with respect to a star-free (sub-)expression while its beginning is at the 
child of the root "created" by N. □ 



5 Non-emptiness of Alternating One-Pebble Tree 
Automata 

In this section, we show that the non-emptiness problem for alternating Biichi 
tree automata with one pebble is 2EXPTIME-complete. The proof is based on 
[TB] where EXPSPACE-completeness for the string case is shown. 

Theorem 5.1. Non- emptiness of alternating one-pebble Biichi tree automata is 
complete for 2EXPTIME. 

To simplify the presentation of the proof of the upper bound, we assume that 
we do not have arbitrary positive Boolean combinations on the right-hand side of 
a transition rule, but only either disjunctions or conjunctions. This is equivalent 
to the more general notion used before. A configuration is called existential if 
the matching transition rule contains a disjunction and universal if it contains a 
conjunction. 

A run r of an alternating Biichi tree automaton A with one pebble is an 
infinite in which the nodes are labeled with configurations {q, x, y), where q is 
the state, x is a node of the tree and j is the position of the pebble (_L if the 
pebble is not placed). We are interested in runs of the following structure. A 
run is homogeneous if, for every existential configuration (g,x,y), all nodes of r 
labeled with configuration (q, x, y) have the same configuration at their child. 

Note that the configuration graph of A on a tree T can be seen as the arena 
of a two-player game with a Biichi winning condition. Thus, from the existence 
of memoryless winning strategies in such games [9] (see also [25]), it follows that 
if A has an accepting run on T, then it also has a homogeneous accepting run. 

We show that for each alternating one-pebble Biichi tree automaton there is 
an equivalent non-deterministic Biichi tree automaton of double exponential size. 
The basic idea is to simulate an accepting homogeneous run of the alternating 
automaton by running the non-deterministic Biichi automaton constructed in 
[T8] for the string case along every branch of the tree. 

When arguing about runs, we will make use of the following version of Konig's 
Lemma. 



Theorem 5.2 (Konig's Lemma). If in a tree each node has only finitely many 
children and there are nodes of arbitrary depth, then the tree has an infinite path. 

Proof (of Theorem \5.1\) . Hardness follows from Proposition 14. II via the transla- 
tion presented in the proof of Theorem 14.41 

For the upper bound, we show that, for each alternating one-pebble Biichi 
tree automaton A, there is an equivalent non-deterministic Biichi tree automaton 
B of size \S A \.2 2UUWAU , which can be constructed from A in space exponential 
in \Qa\- The result then follows by Proposition ^. 41 As already indicated above, 
B checks, on input T, whether A has a homogeneous accepting run r on T. 

A run is not accepting if and only if it has a non-accepting path. Thus, 
B checks that r has no non-accepting path. The non-accepting paths can be 
classified as follows. First, a path it can be bounded, i.e., there is some m S N 
such that all nodes of T occurring in the labels along 7r are at most of depth m, 
otherwise, we call tt unbounded. 

There are two kinds of unbounded non-accepting paths: 

(la) At some point, the automaton A drops the pebble at some node y and never 
lift it again. In this case, all further configurations are of the form (q,x,y), 
for some q, x. 

(lb) Otherwise, the path has infinitely many configurations of the form (q, x, _L). 

In both cases x can be arbitrarily deep in T. 

Likewise, there are two kinds of bounded non-accepting paths. 

(2a) The first kind drops the pebble at some node y and never lifts it again. 
Thus, there are q and x such that (q,x,y) occurs infinitely often on 7r and 
there is a subpath from configuration (q, x, y) to (q, x, y) which does not visit 
any accepting state, does not lift the pebble, and does not visit any strict 
descendant of x. 

(2b) The other kind of bounded paths has infinitely many configurations of the 
form (q, £,-!_), hence there is again a maximum x and a state q such that 
(q, x, _!_) occurs infinitely often and only finitely many nodes have a configura- 
tions (p, x' , _L) with x 1 > x. Therefore, there is a subpath from configuration 
(q, x, _L) to (q, x, _!_) which does not visit any accepting state and does not 
visit any descendant of x without having the pebble placed before. 

Note that the node x is not unique in both cases. Therefore, B will check the 
existence of such path at every possible node x of T. 

In the following we describe the information that B maintains in order to 
check that r has only accepting paths. 

For each x, let S x be the set of states q for which (q, x, _L) occurs in r. We 
consider two kinds of upward paths (downward paths are defined accordingly): 

— paths starting from a configuration (p, x, _L) and ending in a configuration 
(q, x, _L) without an intermediate configuration (p', x' , _L) with x < x' (inter- 
mediate configurations (p',x',y) with x ft y and x < x' are allowed); 

— paths starting from a configuration (p, x, y) and ending in a configuration 
(q,x,y), without any intermediate lifting of the pebble and without any 
intermediate configurations (p',x',y) with x < x' . 



For each node x, we denote by U x the subset of Q x Q x {+, 3}, such that 

— (p, q, +) G t/j; if and only if all upward paths of r from (p, x, _L) to (q, x, _!_) 
visit an accepting state, and 

— (p, q, 3) G U x if and only if r has a upward path from (p, x, _!_) to (q, x, _L), 

and by D x the subset of Q x Q x {+,3}, such that 

— (p, q, +) G -Dx if and only if all downward pathsd of r from (p, x, e) to (q, x, e) 
visit an accepting state, and 

— (p, q, 3) G D x if and only if r has a downward path from (p, x, e) to (q, x, e). 

It should be noted that in the definition of D x , the actual position of the 
pebble does not matter, as long as it is not a descendant of x. The reader 
should also observe the asymmetry between the U x and the D x . The U x only 
concern sub-computations from a configuration without pebble, the D x only 
from a configuration with pebble. 

Furthermore, B uses the following sets which are parametrized by the current 
position y of the pebble. Let, for each node x and each y ^ x, S X:V be the set 
of states p such that (p,x,y) occurs in r. Likewise, let U x>v be the subset of 
Q x Q x {+, 3} such that 

— (p, q, +) G U x<y if and only if all upward paths of r from (p, x, y) to (q, x, y) 
visit an accepting state and 

— (p, q, 3) G U XtV if and only if r has a upward path from (p, x, y) to (q, x, y). 

Recall that upward paths from a configuration (p, x, y) never lift the pebble. 

Additionally, B uses sets R x , R XtV and D[ which will be defined below. For 
each x, we let X x be the set {(S x ^ y , U XyV , R x , y ) \ y / x}. Finally, for each x, 
let the characteristic vector C x of position x be (S x , U x , D x , D' x , R x , X x ). The 
intended state of B at node x is basically (C x .-i 7 C x ). 

The sets of the form S x , S X:V , D x and the transitions of A are guessed by B 
and the remaining information can be determined from it. It is not hard to check 
that local consistency of these sets can be tested by B. It should be noted that 
the computation of U x uses D x to handle subpaths that drop the pebble outside 
of the subtree rooted at x and lift it sometime later. 

Whether a path of type (2b) exists from node x can be inferred from U x and 
the transitions 5q tX - Likewise, paths of type (2a) can be tested with the help of 
the sets U XtV . 

Thus, it remains to describe how to rule out paths of types (la) and (lb) 
and how to check that the sets D x are correct. 

To this end, we define for every path 7r in T an increasing sequence Iq, h, • • ■ 
of nodes of it as follows. First of all, lo — e. Given Ik, h+i is the minimal node 
/ > Ik on 7r such that the following conditions hold. 

(i) For each state q G Si k , each subpath of r starting from a node with configu- 
ration (q, Ik, -L) and reaching a configuration (p, I, _L) contains an accepting 
state. 



2 Since r is homogeneous, all these paths are isomorphic. 



(ii) For each y ^ Ik and each state q £ Si ht y, each subpath of r starting from a 
node with configuration (q, lk,y), reaching a configuration (p, I, y) without 
lifting the pebble contains an accepting state. 

(iii) For each {p, q, 3) S Di kl there is a path in r from (p,lk,s) to (q,lk,£) on 
which no node is a descendant of I. 

(iv) For each (p, q, +) 6 , all paths in r from (p, e) to {q, Ik, s) contain an 
accepting state and do not visit any descendant of I. 

With the help of Konig's Lemma, it is not hard to see that such an I exists 
if r is accepting. 

For each k and each x with Ik < x < lk+i, let R x be the set of states q 
such that there is a node of r labeled with configuration (q, x, _L) that can be 
reached from a configuration (p, Zfc,J_) for some p G Si k , without passing any 
accepting state and without visiting any descendant of x. Note that Ri k+1 = 
by the definition of lk+i- 

Likewise, for each x,y, y ^ x, let R x ,y be the set of states q such that there is 
a node of r with configuration (q,i,j) that can be reached from a configuration 
(tfihij) to w , without passing any accepting state, without lifting the pebble, 
and without visiting descendants of a;. Again by the definition of lk+i, Ui k+1 = 0. 

Finally, let D' x be a set of tuples (p, q, 3) and (p, q, +) from Di, which still 
have to be fulfilled in order to satisfy conditions (iii) and (iv) for k. 

The accepting states of B are those for which R x = 0, for all (S, U, R) £ X x , 
R = 0, and D' x = 0. 

It is not hard to see that B can maintain the characteristic vectors C x and 
that B accepts T if and only if A has a homogeneous accepting run on T. 

Furthermore, there are at most doubly exponentially many different possible 
sets X x and thus the number of possible states of B is at most doubly exponential 
in the size of Qa- Using standard space saving techniques, B can be constructed 
in space \U A \ ■ 2° ( ^ Qa ^. □ 

6 Conclusion 

We have shown how to extend branching-time logics with hybrid machinery 
without blowing up complexity non-elementarily. The key to this result was the 
restriction to a single state variable proposed in [18] . 

We studied the satisfiability problem for the hybrid versions of several branch- 
ing-time logics, ranging from UB to £CT C +Past. We proved 2EXPTIME- 
completeness of the satisfiability problem in all cases. The lower bound was 
additionally explained by the succinctness of hybrid branching-time logics. 

To abtain the upper complexity bound, we extended the automata-theoretic 
approache to hybrid branching-time logics: We proved non-emptiness of alter- 
nating one-pebble Buchi tree automata to be 2EXPTIME-complete. 

We want to give some open problems and directions for further research. 



— There are a lot of open problems concerning the expressive power of hybrid 
branching-time logics. E.g., is 7iZ3(X,F) a strict fragment of HB(K, U)? 



— We only considered satisfiability, leaving out the model-checking problem. 
This gap has to be filled in future work. 

— We restricted to CT£-like branching-time logics, not allowing Boolean com- 
binations and nesting of temporal operators inside a path-quantifier. Ex- 
tending our results to such logics is a challenging problem. In particular, the 
complexity and expressiveness of hybrid CTC* should be investigated. 

— On the purely automata-theoretic side, the result on one-pebble tree au- 
tomata should be extended to fc-pebble tree automata. 
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